ROLLEN
ROLLEN
What is this for?
The ROLLEN plugin (Roles) controls:
- Users of the tenant (login accounts)
- Roles (e.g., "Admin", "Office", "Helper")
- Permissions per role (e.g., "View tickets", "Edit contracts")
- Sections in the menu (which plugins/items are visible to which role)
- General settings of the tenant (logo, branding, UI preferences)
- Your own profile (language, display, password)
It is the central place for "Who is allowed to do what?" and at the same time for global tenant settings.
Common tasks (day-to-day)
- Create a new user
- Assign a user to a role
- Create / rename / delete roles
- Maintain permissions of a role
- Configure menu structure (sections)
- Upload tenant logo
- Maintain your own profile
Step by step
1) Manage users
#### List & new user
1. Admin → Users (/settings/admin/users).
2. "New" (/settings/admin/users/new).
3. Choose username, display name, email, password, role.
4. Save (POST /settings/admin/users).
#### Edit / reset password
GET /settings/admin/users/{username}/edit→ change fields →POST /settings/admin/users/{username}.
2) Manage roles
1. Admin → Roles (/settings/admin/roles).
2. "New" (/settings/admin/roles/new) or edit an existing role.
3. POST /settings/admin/roles to create, POST /settings/admin/roles/{name} to save, POST /settings/admin/roles/{name}/delete to delete.
3) Permissions of a role
1. Admin → Permissions (/settings/admin/permissions/{roleName}).
2. You see all known permissions, each with a level:
- NONE — not visible / no access
- VIEW — may view
- EDIT — may edit
3. Adjust values → save (POST /settings/admin/permissions/{roleName}).
4) Menu sections
Sections determine what appears in the left menu and how it is grouped.
Important paths:
GET /settings/admin/sections— overview- Plugins block:
/settings/admin/sections/plugins - User block:
/settings/admin/sections/user - Administration subgroups:
/settings/admin/sections/administration/content/settings/admin/sections/administration/contracts/settings/admin/sections/administration/users/settings/admin/sections/administration/mail/settings/admin/sections/administration/system
For each block you can enable / disable items, sort them, and assign roles that may see the item.
5) General settings (branding, logo, UI)
1. Admin → General (/settings/admin/general).
2. Options:
- Upload logo →
POST /settings/admin/general/logo/upload - Serve logo →
GET /settings/admin/general/logo/serve - Remove logo →
POST /settings/admin/general/logo/delete - Other settings →
POST /settings/admin/general/save
3. Per-user UI preferences (e.g., collapsed/expanded sidebar, page width) are stored via small endpoints:
/settings/admin/general/ui/pref/settings/admin/general/ui/pref/pageWidth
6) Your own profile
1. Profile in the menu (usually under your own name).
2. Maintain display name, password, language, optional settings.
Common questions / problems
"I don't see a plugin"
- Check whether the plugin is enabled for the tenant.
- It may not be assigned to the role in the sections.
- Check permissions.
"Nobody can log in anymore"
- The Admin role may have been removed. Make sure that at least one user has full access. In an emergency, only a database intervention by your hoster can help.
"Logo is not displayed"
- Was the file uploaded correctly?
- Clear the browser cache.
Technical URLs (quick reference)
General (/settings/admin/general):
GET /settings/admin/generalPOST /settings/admin/general/savePOST /settings/admin/general/logo/uploadGET /settings/admin/general/logo/servePOST /settings/admin/general/logo/deleteGET /settings/admin/general/ui/prefPOST /settings/admin/general/ui/prefGET /settings/admin/general/ui/pref/pageWidthPOST /settings/admin/general/ui/pref/pageWidth
Users (/settings/admin/users):
GET /settings/admin/usersGET /settings/admin/users/newPOST /settings/admin/usersGET /settings/admin/users/{username}/editPOST /settings/admin/users/{username}
Roles (/settings/admin/roles):
GET /settings/admin/rolesGET /settings/admin/roles/newPOST /settings/admin/rolesGET /settings/admin/roles/{name}/editPOST /settings/admin/roles/{name}POST /settings/admin/roles/{name}/delete
Permissions (/settings/admin/permissions):
GET /settings/admin/permissions/{roleName}POST /settings/admin/permissions/{roleName}
Sections (/settings/admin/sections):
GET/POST /settings/admin/sectionsGET/POST /settings/admin/sections/pluginsGET/POST /settings/admin/sections/userGET/POST /settings/admin/sections/administration/contentGET/POST /settings/admin/sections/administration/contractsGET/POST /settings/admin/sections/administration/usersGET/POST /settings/admin/sections/administration/mailGET /settings/admin/sections/administration/system
Notes
- ROLLEN is a prerequisite for permission checks (
@RequirePermission) in other plugins. - Grant permissions as narrowly as possible — safer than "everyone can do everything".
- Change sections carefully: they control the menu for all users of this tenant.